Lucene search
GitLabCVELIST:CVE-2021-22250HistoryAug 25, 2021 - 6:28 p.m.
CVE-2021-22250
2021-08-2518:28:30
GitLab
www.cve.org
5.4 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
5.4 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
29.8%
Improper authorization in GitLab CE/EE affecting all versions since 13.3 allowed users to view and delete impersonation tokens that administrators created for their account
CNA Affected
[
{
"product": "GitLab",
"vendor": "GitLab",
"versions": [
{
"status": "affected",
"version": ">=13.3, <13.12.9"
},
{
"status": "affected",
"version": ">=14.0, <14.0.7"
},
{
"status": "affected",
"version": ">=14.1, <14.1.2"
}
]
}
]Related
osv
osv
BIT-gitlab-2021-22250
2024-03-06 11:19:10
CVE-2021-22250
2021-08-25 19:15:11
cve
cve
CVE-2021-22250
2021-08-25 19:15:11
debiancve
debiancve
CVE-2021-22250
2021-08-25 19:15:11
prion
prion
Authorization
2021-08-25 19:15:00
nessus
nessus
GitLab 13.3 < 13.12.9 / 14.0 < 14.0.7 / 14.1 < 14.1.2 (CVE-2021-22250)
2024-01-03 00:00:00
nvd
nvd
CVE-2021-22250
2021-08-25 19:15:11
veracode
veracode
Improper Authorization
2023-08-06 14:37:49
ubuntucve
ubuntucve
CVE-2021-22250
2021-08-25 00:00:00
5.4 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
5.4 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
29.8%
Related for CVELIST:CVE-2021-22250